7c3ec6124900906f76fb3305b851d28006bcd7ff233007284410c67f94e0a981 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4bf3c61628c21b73486491031ee6fa0_NeikiAnalytics.exe
Size

39KB
Sample

240525-tclkwahf9v
MD5

c4bf3c61628c21b73486491031ee6fa0
SHA1

3234a7cf4026f3188c4c077c59e7f2bf8632fd8d
SHA256

7c3ec6124900906f76fb3305b851d28006bcd7ff233007284410c67f94e0a981
SHA512

81ae00a58927c24f937ab9c7741522fcc79bbabd7912cc74c4a6c1c16b6115c0b16b9b6e4f7eaa97d069aee0dacb726b26fb8339a0c445eaf27b092454f40d67
SSDEEP

768:E8eRH+9lFh0ul16sh7iQroCHaf+RjFBSuB2XN:E9l+Z16sh7iQroC1RB0uY

Score

7^/10

Malware Config

Targets

- Target
  
  c4bf3c61628c21b73486491031ee6fa0_NeikiAnalytics.exe
- Size
  
  39KB
- MD5
  
  c4bf3c61628c21b73486491031ee6fa0
- SHA1
  
  3234a7cf4026f3188c4c077c59e7f2bf8632fd8d
- SHA256
  
  7c3ec6124900906f76fb3305b851d28006bcd7ff233007284410c67f94e0a981
- SHA512
  
  81ae00a58927c24f937ab9c7741522fcc79bbabd7912cc74c4a6c1c16b6115c0b16b9b6e4f7eaa97d069aee0dacb726b26fb8339a0c445eaf27b092454f40d67
- SSDEEP
  
  768:E8eRH+9lFh0ul16sh7iQroCHaf+RjFBSuB2XN:E9l+Z16sh7iQroC1RB0uY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2